IPA: use earlier expiration time when creating new user

The old expiration time was further in future than what krb5 can handle. krb5 treats timestamps as int32 and we exceeded it. Therefore, user authentication yieled an error in SSSD krb5_child logs, even though authentication was successful.
SSSD · Nov 14, 2023 · b7ae078 · b7ae078
1 parent d98fb8d
commit b7ae078
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/sssd_test_framework/roles/ipa.py b/sssd_test_framework/roles/ipa.py
@@ -410,7 +410,7 @@ def add(
         }
 
         if not require_password_reset:
-            attrs["password-expiration"] = (self.cli.option.VALUE, "20380805120000Z")
+            attrs["password-expiration"] = (self.cli.option.VALUE, "20380101120000Z")
 
         self._add(attrs, input=password)
         return self